xmrig | b71b91f0e20815ac9eb9fc2019967c2c1f3e143fa51fd0777cecdc3462435cab

Analysis

max time kernel
93s
max time network
143s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
29-12-2024 03:03

Target

JaffaCakes118_b71b91f0e20815ac9eb9fc2019967c2c1f3e143fa51fd0777cecdc3462435cab.exe
Size

6.0MB
MD5

3212ffc004af4be7fcc8e1b78e1d7b7f
SHA1

25a66f6457fe8cb11d389f27c727eb1ee4a5cf97
SHA256

b71b91f0e20815ac9eb9fc2019967c2c1f3e143fa51fd0777cecdc3462435cab
SHA512

bd04b0c6b329f57dbef42d80761d7b02c2d44b1b2641bcf7772d13427ed35712152b4bed26e68bd07ba2bdf5ec45ba1ff4de8d84f776fbbd117f8180dd5d31b3
SSDEEP

98304:EniLf9FdfE0pZB156utgpPFotBER/mQ32lUJ:eOl56utgpPF8u/7J

Score

10^/10

xmrig miner upx

Xmrig family
xmrig
xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
miner xmrig

XMRig Miner payload 1 IoCs

miner

resource	yara_rule
behavioral2/memory/920-0-0x00007FF620DF0000-0x00007FF621144000-memory.dmp	xmrig

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/920-0-0x00007FF620DF0000-0x00007FF621144000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_b71b91f0e20815ac9eb9fc2019967c2c1f3e143fa51fd0777cecdc3462435cab.exe
"C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_b71b91f0e20815ac9eb9fc2019967c2c1f3e143fa51fd0777cecdc3462435cab.exe"
1⤵
PID:920

memory/920-0-0x00007FF620DF0000-0x00007FF621144000-memory.dmp

Filesize
3.3MB

Download